Understand UK dealers have the OBD fix available for 1M just booked mine in.

Could you do us, the LHD 1M owners a huge favor? Could you ask for the techs or service director when you go there if that is indeed a mostly RHD problem (in terms of dead point in the alarm system coverage) or the LHD cars are exactly the same and a fix should also follow?

To OP: check/inquire whether your 1M gets the firmwire reflash, or whether the action is limited to "convert convenient opening", or whether you get both:

On the basis of information made available very recently on other BMW dedicated forums, it seems that there are now two types of security fixes implemented in the UK (upon demand of customers):

OBD key programming: you all know the story by now (CAS Module access using an EDILOCK BMW key programmer); a fix avoids key cloning (firmware reflash); this "OBD security fix" takes more time to implement than the "convert convenient opening" fix (see next bullet point);

window-rolling feature: if you keep pressing the unlock button on the 1M keyfob, or insert the 1M key into the door lock and keep holding it in the unlock position (to the left), the alarm disarms + both windows roll down as long as you hold; if you keep pressing the lock button on the 1M keyfob, or insert the 1M key into the door lock and keep holding it in the lock position (to the right), the alarm arms + both windows roll up as long as you hold (try it, if you don't believe it ); thieves abuse the window-drop feature by inserting a key or object into the door lock, in order to allow themselves a quiet entry and subsequently abuse the OBD with a disarmed alarm; with a quick fix ("convert convenient opening") the window-rolling feature still works as usual with the keyfob but no longer with the door lock (window-rolling feature is de-activated if the door lock is used); someone posted a copy of the PuMA of the "convenience opening" or "comfort opening convenience" modification on http://www.e90post.com/forums/attach...3&d=1352550757; an M3 owner also quoted this document at http://forums.m3cutters.co.uk/showpo...03&postcount=1.

See also:

"Vulnerability: Vehicles fitted with CAS 2 and CAS 3 modules, can have a new blank immobiliser key programmed with certain 3rd party automotive locksmith software, via the OBD socket, and thus be stolen without the original keys.Solution: Take your car down to your local BMW dealer or a technically proficient BMW electronics specialist, and ask for the SOPT-enabled CAS (Car Access Sytem) firmware update. Cars with the SOPT-enabled CAS firmware, can only have a new immobiliser key programmed if another original immobiliser key is present. If you have had your car serviced at a BMW dealer within the last year, chances are you already have the SOPT update. Older BMW cars fitted with EWS, EWS 2 and EWS 3 modules are not affected by this vunerability. New F-chassis BMW cars are also not affected by this vunerability, as they are fitted with CAS 4 modules which already have the SOPT feature enabled"
(source: http://www.bmwforums.info/bmw-ice-se...html#post55240)

"SOLUTION NOW AVAILABLE.
There was an announcement made to our dealership this afternoon [Nov 16, 2012] that re-programming is now available for ALL models from 2005 onwards.
It is a 20 minute programming job that all main dealers will have the software for. The programming is also completely free of charge regardless of age. It adds a new layer to the encryption that is unaccessable to anyone except a BMW dealer.
It has been announced that work will be carried out ONLY when requested by customers, so don't expect your local dealer to be on the phone to you on Monday morning (unless you have already contact BMW customer services, at which point you are already on a "to contact" list).
Spread the word."
(source: http://www.pistonheads.com/gassing/t...007.37593&nmt= - comment #8)

[Question:]
"How can this be an extra layer of encryption when the EU laws that gave rise to this problem insist that people other than BMW dealers must be able to prepare new keys?
Are you taking about encryption from the OBD port to the CAS module or encryption from the key to the CAS module? Or something else?
Is this fix a replacement for the one that BMW has been applying already, which supposedly just stops the windows rolling down after a screwdriver is forced into the lock? Or is it in addition to that fix?
How is the car going to behave differently after this fix (or these fixes, if we are now talking about two) is applied?
Apologies for asking several questions, but you'll understand that people have had to take action and protect themselves without any help for the past few months, and consequently now need to understand just what vulnerabilities have been removed and what might remain.
[Answer:]I appreciate your concerns and you ask good questions. I will look further into this on Monday [Nov 19, 2012]. I only had a skim read of the details on Friday, but from what I have read it stipulated that there was a new 'layer' which required the use of BMW dealer software to access. It involves programming the CAS through the OBD. My manager has also been asking questions to BMW UK about the matter in question, but details are sketchy at the moment.
The fix itself will definitely cure the programming of blank keys, but I don't think it mentioned the window drop (the key word in that sentence being 'think'). Most cars nowadays have the window-drop feature if you hold the unlock button on the key or insert the key into the door lock and hold it in the unlock position [...]. As long as there are nice cars, there will always be thieving b*****ds finding their weak points.
If it's any consolation, the programming of keys doesn't effect only BMW's. The programming software works on any car with an OBD port and fob remote. The new Fiesta has also been a common stolen car recently with the keyless go technology. Any mid/high spec car with this faces the possibility of being stolen, but unfortunately for us, BMW's are better than Ford/VW/Audi etc and are more 'stolen to order'. After all, if you have the technology, would you steal a £12k VW Passat or £40k 3 Series?
Hope that helps for now, will stay in touch "
(source: http://www.pistonheads.com/gassing/t...BMW+keys&mid=0 - comment #5)
See also: http://www.pistonheads.com/gassing/t...A+fix%3F&mid=0

__________________

“For ’tis the mind that makes the body rich” (W. Shakespeare, The Taming of the Shrew, Act 4, Scene 3)

Don't forget if your 1M was manufactured in and after November 2011 it doesn't need this upgrade as it carried out at the factory. Had to tell my dealer today who was unaware.

BMW UK Press Release (Sep 12, 2012) - "High-tech car theft":

"After extensive research we are clear that none of our latest models - new 1 Series Hatch, 3 Series, 5 Series, 6 Series and 7 Series - nor any other BMW built after September 2011 can be stolen using this method."
(http://bmw.co.uk/bmwuk/about/news/0,...270000,00.html)

PistonHeads (Sep 13, 2012) - "BMW Puts The OBD Fix In"

"BMW is not actively contacting owners, because it doesn’t see this as a recall situation, so it's up to all of us to spread the word: any BMW built before September 2011 and using the new electronic key system ('06 on) is eligible for the software update."
(http://www.pistonheads.com/news/26357.htm)

Better safe than sorry. No harm to install the most recent upgrade, regardless of what's currently on board.

__________________

“For ’tis the mind that makes the body rich” (W. Shakespeare, The Taming of the Shrew, Act 4, Scene 3)

So I took my 1M in to the dealer today and completely wasted 2 hours of my life

Firstly my car was registeted in October 2011 and the revised security for the windows (stop then being opened from the door keyhole) was a waste of time as my car didn't have this weakness.

Secondly don't get too excited about any other additional OBD / Key programming security as contrary to what I had been told this wasn't on offer either! In BMWs mind the additional security solely consists of the window modification preventing them from being opened and it has no relevance to disabling the key programming option from the OBD port....

So all in all a complete waste of time and it appears my own OBD security measures taken are far superior to those offered by BMW!

I am still not completely sure what BMW is doing for this security update. But one of our fellow 1Addict members here did send me these print outs from his dealer when they updated his SW. Maybe this will help some of you guys.

It seems to me that IF you use the mechanical key in the driver's door lock... it will NOT roll up/down your car's windows with this SW security update.